Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Possibly unusual proxy/filter

From: John Deeny <asland () rapidnet com>
Date: Wed, 20 Sep 2000 01:38:35 -0600
Squid can do this. www.squid-cache.org

John

At 04:50 PM 9/18/00 -0600, you wrote:


I manage a system that provides a web service.  We serve port 80 on one
machine (call it "A") and some ports on other machines that are not an
issue.  What I'd like to do is to put an inbound ("reverse") proxy in
front of the web server such that the proxy can allow access only to
specified pages and scripts.  (Sort of a reverse "content filter".)  I
know that through proper Apache configuration I can clearly limit
access, but I'm looking for another layer of "depth" in the protection. 
It'd be nice if I could even validate the arguments to cgi-scripts, but
that may be asking too much.

Right now we have a system running FW-1, but "it doesn't seem to be able
to do what I want" and management is looking for something less
expensive...  A solution that could use Linux would be great as
everything else in our environment is Linux.

I saw the note about zorp, but it looks to be pretty early in its life
cycle.

Any other ideas?

Thanks,
--john




_______________________________________________
Firewall-wizards mailing list
Firewall-wizards () nfr net
http://www.nfr.net/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: